| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Buffer overflow in ping CGI program in Xylogics Annex terminal service allows remote attackers to cause a denial of service via a long query parameter. |
| Remote attacker can execute commands through Majordomo using the Reply-To field and a "lists" command. |
| The SunView (SunTools) selection_svc facility allows remote users to read files. |
| Excite for Web Servers (EWS) 1.1 records the first two characters of a plaintext password in the beginning of the encrypted password, which makes it easier for an attacker to guess passwords via a brute force or dictionary attack. |
| Denial of service by sending forged ICMP unreachable packets. |
| Webmin before 0.5 does not restrict the number of invalid passwords that are entered for a valid username, which could allow remote attackers to gain privileges via brute force password cracking. |
| Routed allows attackers to append data to files. |
| Denial of service of inetd on Linux through SYN and RST packets. |
| Idle locking function in MacOS 9 allows local users to bypass the password protection of idled sessions by selecting the "Log Out" option and selecting a "Cancel" option in the dialog box for an application that attempts to verify that the user wants to log out, which returns the attacker into the locked session. |
| Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems. |
| Livingston portmaster machines could be rebooted via a series of commands. |
| Idle locking function in MacOS 9 allows local attackers to bypass the password protection of idled sessions via the programmer's switch or CMD-PWR keyboard sequence, which brings up a debugger that the attacker can use to disable the lock. |
| Denial of service in Cisco IOS web server allows attackers to reboot the router using a long URL. |
| WS_FTP Pro 6.0 uses weak encryption for passwords in its initialization files, which allows remote attackers to easily decrypt the passwords and gain privileges. |
| Access violation in LSASS.EXE (LSA/LSARPC) program in Windows NT allows a denial of service. |
| Vulnerability in ptrace in AIX 4.3 allows local users to gain privileges by attaching to a setgid program. |
| IIS 1.0 allows users to execute arbitrary commands using .bat or .cmd files. |
| ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs. |
| Vulnerability in files.pl script in Novell WebServer Examples Toolkit 2 allows remote attackers to read arbitrary files. |
| Remote execution of arbitrary commands through Guestbook CGI program. |
